Re: [Debconf-discuss] sbd want to give a gpg skills-exchange session?

[Thomas Koch <thomas@koch.ro>]

On Sunday, August 11, 2013 12:26:04 PM Steve Langasek wrote:
> On Sun, Aug 11, 2013 at 11:27:02AM +0200, Thomas Koch wrote:
> > I've had some chatting yesterday about how it's complicate to grasp the
> > inner working of GPG. For example would it be possible to remove an old
> > email address from my GPG key? How?
> 
> Well, the short answer to this question is that no, it's not possible: like
> any good distributed database, GPG keys work in append-only mode.  You can
> revoke an email by appending a revocation packet, but you cannot remove the
> address once it's published.
> 
> Maybe that explains enough about the structure of GPG that a session isn't
> needed? :)

First thank you for the reply. That's what I guessed.
Second, it would be great, if you'd feel like giving this session. There are 
still many questions left:

- how should I manage my key in a responsible way?
- how to work with subkeys? what are subkeys?
- how do I find out whether there's a trust path to a given key?
- what are all these numbers about?

gpg: 3 marginal(s) needed, 1 complete(s) needed, PGP trust model
gpg: depth: 0  valid:   1  signed:  16  trust: 0-, 0q, 0n, 0m, 0f, 1u
gpg: depth: 1  valid:  16  signed: 115  trust: 1-, 1q, 1n, 1m, 12f, 0u
gpg: depth: 2  valid: 105  signed: 187  trust: 81-, 11q, 0n, 4m, 9f, 0u
gpg: depth: 3  valid:  28  signed: 119  trust: 18-, 9q, 0n, 0m, 1f, 0u
gpg: next trustdb check due at 2013-10-16
gpg: Total number processed: 1
gpg:               imported: 1  (RSA: 1)

- what are good habits to maintain my trustdb?

I'm sure we'll have more questions!

Regards, Thomas
- what's monkeysphere?